Software Integrity Blog

Archive for the 'Agile, CI/CD & DevOps' Category

 

[Webinars] Vulnerability reports, application security for DevOps and CI/CD

Learn how vulnerability reports can help you fix critical vulnerabilities effectively, and the essentials of application security for DevOps and CI/CD.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Open Source Security, Software Composition Analysis (SCA), Software Security Program, Webinars | Comments Off on [Webinars] Vulnerability reports, application security for DevOps and CI/CD

 

[Webinars] Fuzz testing, DevOps with Red Hat, and ISO/SAE 21434

Learn about the ins and outs of fuzzing, how to secure your DevOps pipeline with Synopsys and Red Hat, and what ISO/SAE 21434 means for automotive security.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Automotive Cyber Security, Fuzz Testing, Webinars | Comments Off on [Webinars] Fuzz testing, DevOps with Red Hat, and ISO/SAE 21434

 

How to keep your CI/CD pipeline secure with a remote workforce

How do you secure the work of your development team when they’re off your network, working from home? Here are some tips to keep your CI/CD pipeline secure.

Continue Reading...

Posted in Agile, CI/CD & DevOps | Comments Off on How to keep your CI/CD pipeline secure with a remote workforce

 

[Webinars] Modern application security programs, SAST in DevSecOps

Learn more about modern application security programs, DevOps, and CI/CD, and how to integrate static analysis into your DevSecOps pipeline.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Software Security Program, Static Analysis (SAST), Webinars | Comments Off on [Webinars] Modern application security programs, SAST in DevSecOps

 

DevSecOps success takes people, not just technology

Want DevSecOps? Here are some tips to get your development, security, and operations teams communicating effectively and working toward a single purpose.

Continue Reading...

Posted in Agile, CI/CD & DevOps | Comments Off on DevSecOps success takes people, not just technology

 

How does IAST fit into DevSecOps?

IAST, a new generation of application security testing that bridges the gaps between SAST, DAST, and pen testing, seems to have been made for DevSecOps.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Interactive Application Security Testing (IAST) | Comments Off on How does IAST fit into DevSecOps?

 

Start paying down your ‘security debt’ with DevSecOps

Organizations that postpone remediating security issues, or just ignore them, are playing a risky game. But DevSecOps can help reduce your security debt.

Continue Reading...

Posted in Agile, CI/CD & DevOps | Comments Off on Start paying down your ‘security debt’ with DevSecOps

 

3 reasons DevSecOps is getting so much attention

Interest in DevSecOps is on the rise. What’s driving this interest? And how can teams use this knowledge to modernize their application security programs?

Continue Reading...

Posted in Agile, CI/CD & DevOps, Application Security | Comments Off on 3 reasons DevSecOps is getting so much attention

 

Synopsys adds GitHub Action for SAST and SCA

GitHub Actions brings the platform into the CI/CD market, making it simple to integrate SAST and SCA into workflows with the Synopsys Detect GitHub Action.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Software Composition Analysis (SCA), Static Analysis (SAST) | Comments Off on Synopsys adds GitHub Action for SAST and SCA

 

[Webinars] DevSecOps best practices, AppSec tools, and the year in open source

Learn more about DevSecOps best practices, application security tools and features, and key legal developments related to open source in 2019.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Application Security, Open Source Security, Webinars | Comments Off on [Webinars] DevSecOps best practices, AppSec tools, and the year in open source